DMARCeye Reports give you a full picture of your email authentication health. The reports aggregate DMARC aggregate (rua) data from receiving mail servers around the world and present it in a structured, actionable way. This guide walks you through every section of the Reports interface so you can quickly understand what is happening with your email and take the right action when something needs attention.
Navigating to Reports
Select Reports in the left navigation menu. You will land on the domain-level summary view. From there you can drill down into individual senders and IP addresses.
The breadcrumb at the top of the page always shows your current location:
- Domain level — domain.com
- Sender level — domain.com › Ecomail
- IP address level — domain.com › Ecomail › 156.70.13.248
Changing the Date Range
Use the date picker in the top-right corner to change the reporting period. The default view shows the Last 7 days. You can select Last 30 days or a custom range. All charts, metrics, and tables on the page update immediately when you change the period.
Tip: Use Last 30 days when investigating a long-running issue, and Last 7 days for day-to-day monitoring. The date range is preserved as you drill down from domain to sender to IP.
Summary Metric Cards
At the top of every report level you will find four summary cards that give you an instant snapshot of authentication health.
| Card | What it shows | What to look for |
|---|
| DMARC Compliance | Percentage of emails passing DMARC | Should be as close to 100% as possible. Any drop below 95% warrants investigation. |
| Total Emails Reported | Total messages included in DMARC reports received in the period | Compare to your expected sending volume to catch any gaps in coverage. |
| DMARC Compliant | Absolute number of emails that passed DMARC | This number plus Non-compliant should equal Total Emails Reported. |
| DMARC Non-compliant | Emails that failed DMARC and may be quarantined or rejected | Investigate any non-zero value, especially if volume is growing over time. |
Security Recommendations
The Security Recommendations panel appears on both the domain and sender views. It summarises the most important actions you should take, sorted by priority.
| Green | All looking good — no immediate action required. |
|---|
| Blue | Informational notice. For example, which service accounts for the largest share of your email volume. |
| Yellow | Warning that needs attention soon. A common example is 100% of IPs showing 0% SPF alignment — your SPF record may need reviewing. |
| Red | Security Alert — act immediately. A sender is showing a low compliance rate, which could mean a misconfiguration or a spoofing attempt. |
Domain Security Status
On the domain-level Reports view you will also find a Domain Security Status panel on the right side of the page. This shows the current state of the three core email authentication mechanisms for your domain.
| Mechanism | Status | Meaning |
|---|
| DMARC Policy | None / Quarantine / Reject | Your current published DMARC policy. “None” means monitoring only — no enforcement. Move to “Quarantine” and eventually “Reject” once you are confident in your email streams. |
| SPF Record | Active / Missing | Whether a valid SPF TXT record exists in your domain DNS. Active means DMARCeye has detected one. |
| DKIM Signing | Active / Missing | Whether DKIM signatures have been seen in emails from this domain. Active means at least one sender is signing mail with DKIM. |
